Static routing in a Netscreen 208

Posted on 2006-07-13
Last Modified: 2012-08-13
We have a Netscreen 208 that's currently in a pretty standard configuration.  Our provider initially set us up with a block of 16 IPs, so we have a default route set up on the untrust interface as follows:

set route interface ethernet3 gateway xx.yy.zz.49

There are a number of static NAT's for the other IP's to servers behind the firewall, nothing fancy.

We needed more IP's so our provider gave us a second block a.b.c.d/28, however this one has a different default gateway, xx.yy.zz.62.  What's the correct way to set up the routing now that we have two gateways on the same network that we need to deal with?  Is it just a matter of ths?

set route a.b.c.d/28 interface ethernet3 gateway xx.yy.zz.62

Or do we need to set up a seperate interface for this new netblock?
Question by:brucepennypacker
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Accepted Solution

jabiii earned 50 total points
ID: 17101195
well, being you have a 208, you have plenty of ports to use...
I would just use a second nic on the 208 assign it an ip in that new range, and assign it a route.
ie dual untrust.
LVL 32

Expert Comment

ID: 17102060
With 208, agree with Jim.


Expert Comment

ID: 17105285
I would use another port on the 208 and assign it to the new range and assign it the new default-gateway route.  So I also agree with jabiii and Rajesh.

David   (aka:Pentrix2)

Featured Post

Transaction Monitoring Vs. Real User Monitoring

Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question